Bingo! Yesterday we came up with a very similar solution. We'll be proposing it as an alternative today, we'll see how it goes. What we'll do is VPN the DB connection to their private servers, and manage the Redis/Mongo (non-sensitive) in the standard AWS stack. We already do it that way now, but using an internal DB server in AWS.
Fortunately, they haven't made any comments on the mobile app connection/data storage yet :) . That's a bigger problem I guess, since we need the phone's internal DB to store some data (it needs to work offline). I mean, they are secure enough, but given our client's previous records I don't think they'll share our opinion.
Fortunately, they haven't made any comments on the mobile app connection/data storage yet :) . That's a bigger problem I guess, since we need the phone's internal DB to store some data (it needs to work offline). I mean, they are secure enough, but given our client's previous records I don't think they'll share our opinion.